Legal compliance-by-design is the process of developing a software system that processes personal data in such a way that its ability to meet specific legal provisions is ascertained. In this paper, we describe techniques to automatically check the compliance of the security policies of a system against formal rules derived from legal provisions by re-using available tools for security policy verification. We also show the practical viability of our approach by reporting the experimental results of a prototype for checking compliance of realistic and synthetic policies against the European Data Protection Directive (EU DPD).
CITATION STYLE
Ranise, S., & Siswantoro, H. (2017). Automated legal compliance checking by security policy analysis. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 10489 LNCS, pp. 361–372). Springer Verlag. https://doi.org/10.1007/978-3-319-66284-8_30
Mendeley helps you to discover research relevant for your work.